Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler
From: Dave Hansen <dave.hansen@xxxxxxxxx>
Date: Tue, 30 May 2023 12:03:52 -0700
Cc: "Gupta, Pankaj" <pankaj.gupta@xxxxxxx>, Tianyu Lan <ltykernel@xxxxxxxxx>, luto@xxxxxxxxxx, tglx@xxxxxxxxxxxxx, mingo@xxxxxxxxxx, bp@xxxxxxxxx, dave.hansen@xxxxxxxxxxxxxxx, x86@xxxxxxxxxx, hpa@xxxxxxxxx, seanjc@xxxxxxxxxx, pbonzini@xxxxxxxxxx, jgross@xxxxxxxx, tiala@xxxxxxxxxxxxx, kirill@xxxxxxxxxxxxx, jiangshan.ljs@xxxxxxxxxxxx, ashish.kalra@xxxxxxx, srutherford@xxxxxxxxxx, akpm@xxxxxxxxxxxxxxxxxxxx, anshuman.khandual@xxxxxxx, pawan.kumar.gupta@xxxxxxxxxxxxxxx, adrian.hunter@xxxxxxxxx, daniel.sneddon@xxxxxxxxxxxxxxx, alexander.shishkin@xxxxxxxxxxxxxxx, sandipan.das@xxxxxxx, ray.huang@xxxxxxx, brijesh.singh@xxxxxxx, michael.roth@xxxxxxx, venu.busireddy@xxxxxxxxxx, sterritt@xxxxxxxxxx, tony.luck@xxxxxxxxx, samitolvanen@xxxxxxxxxx, fenghua.yu@xxxxxxxxx, pangupta@xxxxxxx, linux-kernel@xxxxxxxxxxxxxxx, kvm@xxxxxxxxxxxxxxx, linux-hyperv@xxxxxxxxxxxxxxx, linux-arch@xxxxxxxxxxxxxxx
In-reply-to: <20230530185232.GA211927@hirez.programming.kicks-ass.net>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.11.0

On 5/30/23 11:52, Peter Zijlstra wrote:
>> That should really say that a nested #HV should never be raised by the
>> hypervisor, but if it is, then the guest should detect that and
>> self-terminate knowing that the hypervisor is possibly being malicious.
> I've yet to see code that can do that reliably.

By "#HV should never be raised by the hypervisor", I think Tom means:

	#HV can and will be raised by malicious hypervisors and the
	guest must be able to unambiguously handle it in a way that
	will not result in the guest getting rooted.

Right? ;)

References:
- [RFC PATCH V6 00/14] x86/hyperv/sev: Add AMD sev-snp enlightened guest support on hyperv
  - From: Tianyu Lan
- [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler
  - From: Tianyu Lan
- Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler
  - From: Peter Zijlstra
- Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler
  - From: Gupta, Pankaj
- Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler
  - From: Peter Zijlstra
- Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler
  - From: Tom Lendacky
- Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler
  - From: Peter Zijlstra

Prev by Date: Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler
Next by Date: RE: [PATCH v3] hv_netvsc: Allocate rx indirection table size dynamically
Previous by thread: Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler
Next by thread: Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler
Index(es):
- Date
- Thread

[Index of Archives] [Linux Samsung SoC] [Linux Rockchip SoC] [Linux Actions SoC] [Linux for Synopsys ARC Processors] [Linux NFS] [Linux NILFS] [Linux USB Devel] [Video for Linux] [Linux Audio Users] [Yosemite News] [Linux Kernel] [Linux SCSI]